Filtered by vendor Cesanta
Subscriptions
Total
115 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2018-10945 | 1 Cesanta | 1 Mongoose | 2024-08-05 | N/A |
The mg_handle_cgi function in mongoose.c in Mongoose 6.11 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash, or NULL pointer dereference) via an HTTP request, related to the mbuf_insert function. | ||||
CVE-2019-19307 | 1 Cesanta | 1 Mongoose | 2024-08-05 | 9.8 Critical |
An integer overflow in parse_mqtt in mongoose.c in Cesanta Mongoose 6.16 allows an attacker to achieve remote DoS (infinite loop), or possibly cause an out-of-bounds write, by sending a crafted MQTT protocol packet. | ||||
CVE-2019-13503 | 1 Cesanta | 1 Mongoose | 2024-08-04 | 7.5 High |
mq_parse_http in mongoose.c in Mongoose 6.15 has a heap-based buffer over-read. | ||||
CVE-2019-12951 | 1 Cesanta | 1 Mongoose | 2024-08-04 | N/A |
An issue was discovered in Mongoose before 6.15. The parse_mqtt() function in mg_mqtt.c has a critical heap-based buffer overflow. | ||||
CVE-2020-36375 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
Stack overflow vulnerability in parse_equality Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36366 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
Stack overflow vulnerability in parse_value Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36373 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
Stack overflow vulnerability in parse_shifts Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36367 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
Stack overflow vulnerability in parse_block Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36372 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
Stack overflow vulnerability in parse_plus_minus Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36368 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
Stack overflow vulnerability in parse_statement Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36369 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
Stack overflow vulnerability in parse_statement_list Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36374 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
Stack overflow vulnerability in parse_comparison Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36370 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
Stack overflow vulnerability in parse_unary Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36371 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
Stack overflow vulnerability in parse_mul_div_rem Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-25756 | 1 Cesanta | 1 Mongoose | 2024-08-04 | 9.8 Critical |
A buffer overflow vulnerability exists in the mg_get_http_header function in Cesanta Mongoose 6.18 due to a lack of bounds checking. A crafted HTTP header can exploit this bug. NOTE: a committer has stated "this will not happen in practice. | ||||
CVE-2020-25887 | 1 Cesanta | 1 Mongoose | 2024-08-04 | 8.8 High |
Buffer overflow in mg_resolve_from_hosts_file in Mongoose 6.18, when reading from a crafted hosts file. | ||||
CVE-2020-18392 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
Stack overflow vulnerability in parse_array Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2021-46514 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
There is an Assertion 'ppos != NULL && mjs_is_number(*ppos)' failed at src/mjs_core.c in Cesanta MJS v2.20.0. | ||||
CVE-2021-46508 | 1 Cesanta | 1 Mjs | 2024-08-04 | 5.5 Medium |
There is an Assertion `i < parts_cnt' failed at src/mjs_bcode.c in Cesanta MJS v2.20.0. | ||||
CVE-2021-46520 | 1 Cesanta | 1 Mjs | 2024-08-04 | 7.8 High |
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_jprintf at src/mjs_util.c. |